Lucene search
K

8 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in openimageio

There are multiple code execution vulnerabilities in the IFFOutput::close function of the OpenImageIO Project, specifically in OpenImageIO v2.4.4.2. A specially crafted ImageOutput object can lead to a heap buffer overflow. An attacker can provide malicious input to exploit these vulnerabilities...

8.1CVSS8AI score0.01962EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/05/26 12:0 a.m.14 views

PT-2026-43310

Name of the Vulnerable Software and Affected Versions FastNetMon Community Edition versions prior to 1.2.10 Description An integer overflow exists in the BGP AS PATH attribute encoder. The IPv4UnicastAnnounce::get attributes function calculates the attribute length and stores it in a uint8 t fiel...

9.8CVSS5.7AI score0.00308EPSS
Exploits0References19
OSV
OSV
added 2024/12/23 7:29 p.m.1 views

GHSA-H6XM-C6R4-VMWF Unsound usages of `u8` type casting in spl-token-swap

The library provides a safe public API unpack to cast u8 array to arbitrary types, which can cause to undefined behaviors. The length check of array can only prevent out-of-bound access on the return type. However, it can't prevent misaligned pointer when casting u8 pointer to a type aligned to...

6AI score
Exploits0References3
OSV
OSV
added 2022/12/22 10:15 p.m.1 views

DEBIAN-CVE-2022-43602

Multiple code execution vulnerabilities exist in the IFFOutput::close functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to a heap buffer overflow. An attacker can provide malicious input to trigger these vulnerabilities.This vulnerability...

8.1CVSS9.3AI score0.01922EPSS
Exploits1References1
OSV
OSV
added 2022/12/22 10:15 p.m.1 views

DEBIAN-CVE-2022-43597

Multiple memory corruption vulnerabilities exist in the IFFOutput alignment padding functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to arbitrary code execution. An attacker can provide malicious input to trigger these vulnerabilities.This...

8.1CVSS9.2AI score0.01845EPSS
Exploits1References1
OSV
OSV
added 2022/12/22 10:15 p.m.5 views

UBUNTU-CVE-2022-43602

Multiple code execution vulnerabilities exist in the IFFOutput::close functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to a heap buffer overflow. An attacker can provide malicious input to trigger these vulnerabilities.This vulnerability...

8.1CVSS8AI score0.01922EPSS
Exploits1References3
OSV
OSV
added 2022/12/22 10:15 p.m.3 views

UBUNTU-CVE-2022-43599

Multiple code execution vulnerabilities exist in the IFFOutput::close functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially crafted ImageOutput Object can lead to a heap buffer overflow. An attacker can provide malicious input to trigger these vulnerabilities.This vulnerability...

8.1CVSS8AI score0.01962EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2022/11/14 12:0 a.m.3 views

PT-2022-6816 · Unknown +1 · Openimageio +1

Name of the Vulnerable Software and Affected Versions: OpenImageIO version 2.4.4.2 Description: The issue is related to a buffer overflow in the close function of the iffoutput component in the OpenImageIO library. This can be exploited by a remote attacker using a specially crafted file,...

9.8CVSS6.9AI score0.01962EPSS
Exploits23References92
Rows per page
Query Builder